DevOps Engineer Nginx, English-speaking

Top 3 Reasons To Join Us Hybrid working model and good work-life balance 15+ days of paid leave per year Premium health insurance for employee The Job

We are looking for a skilled DevOps Engineer with hands-on experience in managing API gateways using OpenResty and Lua, implementing OIDC-based authentication, and deploying containerized applications using Helm into Kubernetes clusters (EKS/AKS). The ideal candidate should also have strong networking knowledge, cloud-native experience, and a solid grasp of modern DevOps practices.

 

Key Responsibilities:

• Design, implement, and manage Nginx configurations to support M2M and H2M pre-authentication.
• Integrate Nginx with identity and access management (IAM) systems, including, OpenID Connect, and SAML.
• Develop and enforce security policies ensuring robust pre-authentication for M2M and H2M communications.
• Build, containerize, and deploy authentication components using Docker and Helm.
• Manage deployments across AKS and EKS clusters in production and staging environments.
• Work closely with security, DevOps, and application teams to ensure seamless integration and high security standards.
• Optimize Nginx settings for performance, security, and scalability.
• Monitor, troubleshoot, and resolve Nginx-related issues, ensuring system reliability and performance.
• Stay current with the latest Nginx features, security updates, and industry best practices.
• Document configurations, procedures, and system changes to maintain accurate records and facilitate knowledge sharing.

Your Skills and Experience

QUALIFICATIONS AND EXPERIENCE REQUIRED:

Experience:

• 3+ years of experience with Nginx, including extensive configuration and performance tuning.

Education:

• Bachelor’s degree in computer science, Information Technology, or a related field.

Required Qualifications

• In-depth understanding of pre-authentication techniques for both M2M and H2M communications.
• Strong knowledge in Linux kernel Systems.
• Strong knowledge in containerized platforms (Docker/Podman)
• Experience with IAM systems such as OAuth2, OpenID Connect, and SAML.
• Strong scripting skills in languages such as Python, Bash, or similar.
• Excellent analytical and problem-solving skills.
• Strong communication and collaboration abilities.

Preferred Qualifications

• Networking & Protocols:
  • Deep understanding of networking fundamentals (IP, DNS, routing, firewalls, WAF).
  • Strong knowledge of HTTP/HTTPS, including headers, methods, caching, and status codes.
  • Experience with SSL/TLS, certificate management, and secure communication best practices.
  • Familiarity with reverse proxies, load balancing, and ingress traffic handling.
• Containerization:
  • Experience with Docker for building, managing, and debugging containers.
  • Ability to write and optimize Dockerfiles for performance and security.
  • Understanding of container best practices (e.g., multi-stage builds, image hardening).
  • Knowledge of container networking, volumes, and logging.
• Authentication & Authorization:
  • Implementing and troubleshooting OIDC (OpenID Connect) integrations.
  • Experience integrating with Azure EntraID or other identity providers.
  • Working knowledge of JWTs, scopes, claims, and token validation.
  • Implementing pre-authentication logic in front of internal applications.
• OpenResty & Lua
  • Hands-on experience managing OpenResty (Nginx + LuaJIT) for custom reverse proxy setups.
  • Writing and maintaining Lua scripts for request handling, authentication, routing, and logging.
  • Familiarity with Nginx internals and Lua phases in the HTTP request lifecycle.
• Kubernetes (AKS/EKS) & Helm
  • Writing, templating, and maintaining Helm charts for complex applications.
  • Knowledge of K8s primitives: Deployments, Services, Ingress, ConfigMaps, Secrets, RBAC.
  • Cert-Manager, ExternalDNS
  • Understanding of rolling deployments, health checks, and zero-downtime upgrades
• CI/CD & Infrastructure Automation
  • Familiarity with CI/CD pipelines for deploying Helm charts and Docker images.
  • Exposure to Terraform, focused on Terraform Cloud
  • Scripting in Bash, Python, or similar for automation and tooling.

Why You'll Love Working Here

• Join a dynamic and fast-growing global network, tackle great challenges with large-scale products, and work with modern technologies

• We support your development and are committed to advancing your career

• Hybrid and flexible working environment with attractive benefits

• We embrace diversity! As an Equal Opportunity Employer, we value strength in diversity and prohibit discrimination in any form

• English-speaking environment where you will have opportunities to work on global projects and connect with experienced colleagues from around the world

• Hybrid working model and good work-life balance

• 13th-month salary bonus and annual performance bonus

• 100% offered salary and mandatory social insurances in 2-month probation

• 15+ days of paid leave per year

• Premium health insurance

• Annual company trip and various team building activities and appreciation gifts

Benefits

• Join a dynamic and fast-growing global network, tackle great challenges with large-scale products, and work with modern technologies

• We support your development and are committed to advancing your career

• Hybrid and flexible working environment with attractive benefits

• We embrace diversity! As an Equal Opportunity Employer, we value strength in diversity and prohibit discrimination in any form

• English-speaking environment where you will have opportunities to work on global projects and connect with experienced colleagues from around the world

• Hybrid working model and good work-life balance

• 13th-month salary bonus and annual performance bonus

• 100% offered salary and mandatory social insurances in 2-month probation

• 15+ days of paid leave per year

• Premium health insurance

• Annual company trip and various team building activities and appreciation gifts